We use gre over ipsec, to connect multiple sites to our core. Many of the site have different BW based on remote site carrier limitations. The BW of some are symetrical, some are DSL.
I have started deploying VOIP at some of these sites, and have begun playing with QOS. I only want to insure voice traffic, and control are passed accordingly, all other traffic can fall into default queue during times of high link usage.
For the remote sites, I have settled on the below config:
class-map match-any AutoQoS-VoIP-RTP-Trust
match ip dscp ef
class-map match-any AutoQoS-VoIP-Control-Trust
match ip dscp cs3
match ip dscp af31
priority percent 70
bandwidth percent 5
ip address 192.168.1.66 255.255.255.252
ip mtu 1500
ip tcp adjust-mss 1436
keepalive 10 3
tunnel source x.x.x.x
tunnel destination x.x.x.x
ip address x.x.x.x 255.255.255.240
service-policy output AutoQoS-Policy-Trust
(only the part of the config related to QOS is included to protect the innocent!)
My question is, how do I apply a similiar config at the core end, where I have multiple GRE interfaces, with different corresponding bandwidths? I tried to apply the service-policy to the tunnel interface, but it does not accept the command because of the queuing type.
Thanks in advance.